Skip to content
The Nexus
DossierENTITY

VS Code Extensions

Coverage of VS Code Extensions in the Nexus archive.

Earliest in view: Apr 22 · 17:55 UTCMost recent: Apr 28 · 14:59 UTC
Co-mentioned in this coverage
Recent coverage
  • SECURITYApr 28 · 14:59 UTCDARK READING
    Fresh Wave of GlassWorm VS Code Extensions Slices Through Supply Chain

    Attackers are distributing malicious VS Code extensions via Open VSX, exploiting supply chain vulnerabilities to spread self-propagating malware. The campaign involves seeding seemingly benign extensions that act as vectors for malware propagation.

  • SECURITYApr 22 · 17:55 UTCTHE HACKER NEWS
    Malicious KICS Docker Images and VS Code Extensions Hit Checkmarx Supply Chain

    Cybersecurity researchers warned of malicious Docker images and VS Code extensions in Checkmarx's supply chain. Socket revealed threat actors overwrote tags like v2.1.20 and alpine in the 'checkmarx/kics' Docker Hub repository and introduced a fake v2.1.21 tag.

VS Code Extensions · Dossier · The Nexus